Keep Server Online
If you find the Apache Lounge, the downloads and overall help useful, please express your satisfaction with a donation.
or
A donation makes a contribution towards the costs, the time and effort that's going in this site and building.
Thank You! Steffen
Your donations will help to keep this site alive and well, and continuing building binaries. Apache Lounge is not sponsored.
| |
|
Topic: Error in one Vhost |
|
Author |
|
bagu
Joined: 06 Jan 2011 Posts: 193 Location: France
|
Posted: Sat 07 Sep '24 11:07 Post subject: Error in one Vhost |
|
|
Hello,
I have a strange problem with one of my hosts.
I'm getting this error message:
Quote: |
Connexion bloquée : problème de sécurité potentiel
Firefox a détecté une menace potentielle de sécurité et a interrompu le chargement de www.bagu.biz, car ce site web nécessite une connexion sécurisée.
Que pouvez-vous faire ?
www.bagu.biz a recours à une stratégie de sécurité HTTP Strict Transport Security (HSTS), une connexion sécurisée est obligatoire pour y accéder. Vous ne pouvez pas ajouter d’exception pour visiter ce site.
Le problème vient probablement du site web, vous ne pouvez donc pas y remédier. Vous pouvez le signaler aux personnes qui administrent le site.
|
Here is my httpd-ssl.conf : https://pastebin.com/jnT1JMu9
And my vhost config file : https://pastebin.com/hKDYLNfc
I get this message every time I restart the server. And only on Firefox. CTRL + SHIFT + R is enough to display the page properly, but I'd like to understand why this happens, and only on www.bagu.biz.
I also use cloudflare services, in case that has an impact.
Could you please help me?
Thanks |
|
Back to top |
|
James Blond Moderator
Joined: 19 Jan 2006 Posts: 7360 Location: Germany, Next to Hamburg
|
Posted: Sun 08 Sep '24 18:40 Post subject: |
|
|
My best guess is your cloudflare config. |
|
Back to top |
|
bagu
Joined: 06 Jan 2011 Posts: 193 Location: France
|
Posted: Sun 08 Sep '24 19:26 Post subject: |
|
|
I finally found the source of the problem.
I'm using pihole+unbound as a DHCP + DNS server.
I had set the server ip as a fixed resolution on the domain name for pihole, but this was not the case for unbound.
As soon as I removed it, everything started working perfectly again.
So I guess it was a problem for the certificate, presenting sometimes the ip (and therefore not valid for the certificate) and sometimes the domain name (and therefore in this case, valid for the certificate). |
|
Back to top |
|
|
|
|
|
|